We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now

x

weird ping issue

Medium Priority
349 Views
Last Modified: 2013-12-07
I have a very strange issue.  I have a win 2k sp4 server behind a firewall that cannot ping a certain public IP address.  Other servers and clients on the same network behind the same firewall can ping the address.  When I do a trace route to the public ip address on the affected server, I trace down to the gateway address and then time out.  On the other servers/clients on same network, I can trace route through to the next and final hop.  I can browse to a webserver on that public IP address on the affected machine.  Just the ping won’t work. I have deleted the route on the affetcted server using the route delete command to no avail.  I have no outbound restrictive policies and the host device doesn’t either. Can anyone help with this?
Comment
Watch Question

Commented:
What is the make and model of the Router/Firewall ?(your default gateway).  It is possible to explicitly deny ICMP (Pings) on a host by host basis using Cisco routers for example.

Author

Commented:
I thought of this but we have not made any router or firewall changes.  This just began happening all of a sudden.

Commented:
Interesting. This may sound odd, but you could try putting the server in question into another switchport as ive seen faulty switchports distort packet contents in the past. Also, could I pleased see the contents of IPconfig/all for the NIC on your server.''

thanks

Author

Commented:
Wouldn't fauluty switch port distort all ping tranmissions?  I can ping a whole range of other public Ip's from that server.
Can you ping other public ip addresses from this server? If so, is it possible that your particular server is being blocked on the other end; the public device possibly blocking it?

Commented:
you are correct, i missread the question.

Author

Commented:
No problem, I just appreciate the help, I am stumped.

Commented:
You say the trace on your server times-out at the default gateway? could i see your ipconfig/all possibly?

Commented:
I would suggest that as all of your other hosts on your internal subnet can ping this external public IP address you do not have a routing issue. Also, as you would typically have 1 IP address on the wan interface of your router/firewall and are using NAT (I assume you are) the public server has not blocked you (it is not possible to block a specific internal host behind a nat device on a public server). It may be that you have a problem  with TCP/IP on the server perhaps? You could try re-installing TCP/IP on the server. If you can access a webpage via http  I would suggest DNS is working ok.
I would try another switchport. I have seen low end routers and hubs do this.

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Commented:
Craig,  agreed. Ive seen low end switches pass only icmp, but not IP, TCP, or UDP! crazy huh?:-)
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.